(19) 



J 



(12) 



(43) Date of publication: 

01.07.1998 Bulletin 1998/27 



Europaisches Patentamt 
European Patent Office 

Office europeen des brevets (1 1 

EUROPEAN PATENT APPLICATION 

(51) Int. Cl. 6 : H04L 9/08, H04Q 7/32 



llllllllllllllllllllllllllllllll 

EP 0 851 628 A1 



(21) Application number: 96309444.6 

(22) Date of filing: 23.12.1996 



(84) Designated Contracting States: 


(72) Inventor: 


AT BE CH DE DK ES Fl FR GB GR IE IT LI LU MC 


Johnstonjhomas Francis 


NL PT SE 


London,W2 6DG (GB) 


Designated Extension States: 




AL LT LV 


(74) Representative: 




Read, Matthew Charles et al 


(71) Applicant: ICO Services Ltd. 


Venner Shipley & Co. 


London W6 9BN (GB) 


20 Little Britain 




London EC1A 7DH (GB) 



(54) Key distribution for mobile network 

(57) A satellite mobile telecommunications system 
includes mobile terminals 2a, 2b which can communi- 
cate with one another using end-to end encryption and 
decryption techniques. When secure end-to-end com- 
munication is required, each terminal uses a common 
encryption code (RAND) to encode data and decode 
data transmitted between the terminals. The encryption 
code is transmitted in a secure manner from a remote 
database station (15) to the terminals. Each terminal 
stores a terminal key (K a , K b ) on its SIM card and the 
keys are also held in the remote station (15). Partial 
keys (K pa , K b ) comprising the pseudo random number 
(RAND) and the keys K a , K b stored at the station (15) 



are produced at the station (15) by an exclusive OR 
process in order to mask the keys and the random 
number. The partial key K pa = K a + (RAND) is sent to 
terminal 2a. At the terminal 2a, the partial key K pa is 
exclusive OR-ed with the locally stored terminal key K a 
on the SIM card, so as to recover (RAND). The common 
code (RAND) is determined by the same process at ter- 
minal 2b, from K pb = K b +(RAND) and the locally 
stored key K b . The terminals then both run a GSM 
encryption algorithm (A5) to encrypt and decrypt trans- 
mitted data, on the basis of the common code (RAND). 
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